Security Policy
Your security and data protection are our top priorities. Learn about the comprehensive measures we've implemented to keep your information safe and secure.
256-bit
SSL Encryption
24/7
Monitoring
100%
Compliance
1. Introduction
This Security Policy outlines the measures Crowdveste ("we," "us," "our") has implemented to ensure the protection of data, platform integrity, and user transactions on our donation-based and equity-based crowdfunding platform.
2. Platform Security
SSL/TLS Encryption
Industry-standard encryption protocols secure all data transmission between users and our servers.
Firewall Protection
Advanced firewalls and intrusion detection systems protect against unauthorized access and cyber threats.
Access Control
Multi-factor authentication and role-based permissions control access to critical systems and databases.
2.1 Crowdveste employs industry-standard encryption protocols (such as SSL/TLS) to secure all data transmitted between users and our servers.
2.2 Firewalls, intrusion detection systems, and real-time monitoring are used to protect against unauthorized access and cyber threats.
2.3 Access to critical systems and databases is strictly controlled using multi-factor authentication and role-based permissions.
3. User Data Security
Encrypted Storage
All personal data, including identity documents and financial information, is securely stored in encrypted form.
Authorized Access Only
Data is only accessible by authorized personnel bound by confidentiality agreements and subject to regular security training.
3.1 All personal data, including identity documents and financial information, is securely stored in encrypted form.
3.2 User data is only accessible by authorized personnel who are bound by confidentiality agreements and subject to regular security training.
4. Payment and Investment Security
Secure Payment Gateways
Transactions are processed through secure and licensed payment gateways compliant with Zambian regulations.
Regulated Escrow Accounts
Investor funds are held in regulated escrow accounts until campaign milestones are met, ensuring fund integrity.
AML Compliance
All investments undergo compliance checks, fraud screening, and Anti-Money Laundering protocols.
4.1 Transactions are processed through secure and licensed payment gateways compliant with financial and data protection regulations in Zambia.
4.2 Investor funds are held in regulated escrow accounts until campaign milestones are met, ensuring fund integrity and compliance with SEC guidelines.
4.3 All investments are subject to internal compliance checks, fraud screening, and AML (Anti-Money Laundering) protocols.
5. Incident Response
Prompt Notification
In the event of a security incident, affected users will be notified promptly with immediate corrective measures.
Incident Response Plan
We maintain a comprehensive IRP including breach containment, mitigation, investigation, and reporting procedures.
5.1 In the event of a data breach or security incident, affected users will be notified promptly, and immediate corrective measures will be taken.
5.2 Crowdveste maintains an internal Incident Response Plan (IRP) that includes breach containment, mitigation, investigation, and reporting procedures.
6. Updates and Revisions
Crowdveste reserves the right to update this policy from time to time in line with evolving threats and regulatory changes. Users will be notified of significant changes.
Questions About Our Security?
If you have any questions or concerns about our security measures, please don't hesitate to contact our security team. We're here to ensure your peace of mind.